Crucial Exams

GCP Professional Cloud Security Engineer Practice Question

Your organization runs a shared-services VPC (10.10.0.0/16) that reaches on-premises through Dedicated Interconnect and Cloud Router. A separate development project needs private access to the shared database subnets but must stay isolated from on-premises. Engineers propose adding VPC Network Peering between the development VPC and the shared-services VPC and relying on Cloud Router to advertise any required on-prem routes. Which statement about VPC Network Peering must you verify before approving this plan?

  • The two VPC networks must have non-overlapping primary and secondary RFC 1918 address ranges; otherwise the peering request will fail.

  • Routes learned from the on-premises Cloud Router are automatically propagated through the peering connection to the development VPC.

  • You must configure IPsec VPN tunnels between the two VPCs before VPC Network Peering can exchange traffic.

  • After peering, ingress firewall rules defined in the shared-services VPC automatically apply to instances in the development VPC.

GCP Professional Cloud Security Engineer
Securing communications and establishing boundary protection
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot